This chapter provided you with some key security concepts that developers should understand when creating custom code for Microsoft Dynamics CRM. You should now have a good understanding of Microsoft Dynamics CRM security principals and access rights. Microsoft Dynamics CRM allows developers to write code that programmatically performs many of the key security management activities, such as creating a role, assigning records, and sharing retrieving security roles. Everything you can configure security to do through the Microsoft Dynamics CRM UI, you can configure programmatically using the SDK. When you connect your code to Microsoft Dynamics CRM API, it automatically manages the record security for you, saving you the extra effort of writing code to determine the appropriate privileges. Microsoft Dynamics CRM also allows you to use impersonation to run code as a user different from the person browsing the Web application. For most programming requirements, you can perform all the data operations you need through the Microsoft Dynamics CRM API. However, sometimes you might need to access data in the SQL Server database directly. Microsoft offers filtered views within the SQL Server database as an alternative method for retrieving data. Even though Microsoft Dynamics CRM does not provide an out-of-the-box tool to encrypt data stored in an entity’s attribute, this chapter showed examples and sample code of how to perform one-way and two-way encryption of your data.